securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-26 10:53:07 +01:00

Author	SHA1	Message	Date
reyesj2	c1282e77a0	move removal of eaintegrations.txt to up_to_2.4.130	2025-02-21 14:02:22 -06:00
Josh Brower	22f3865602	Dont upgrade integrations during pre-phase	2025-02-21 09:32:36 -05:00
Jason Ertel	f51d255c98	Merge pull request #14274 from Security-Onion-Solutions/jertel/wip Ignore more acceptable test error logs	2025-02-21 08:40:56 -05:00
Jason Ertel	66a2ec7e21	ES upgrade errors to ignore	2025-02-21 08:38:40 -05:00
Jorge Reyes	fc12b1f09b	Merge pull request #14272 from Security-Onion-Solutions/reyesj2-patch-1 ES 8.17.2 pipeline version updates	2025-02-20 17:32:20 -06:00
reyesj2	69b559fb26	ES 8.17.2 pipeline version updates	2025-02-20 17:11:28 -06:00
Jorge Reyes	637ed59567	Merge pull request #14271 from Security-Onion-Solutions/reyesj2-patch-1 add back settings previously defined when overwritting logs-elastic_a…	2025-02-20 15:26:12 -06:00
reyesj2	df350b5a56	ES 8.17.2	2025-02-20 14:20:09 -06:00
reyesj2	3b6344e7f0	add back settings previously defined when overwritting logs-elastic_agent@package and logs-endpoint.diagnostics.collection@package	2025-02-20 12:42:30 -06:00
Jorge Reyes	145648431f	Merge pull request #14267 from Security-Onion-Solutions/reyesj2-patch-1 set metrics indices to 0 replicas	2025-02-20 10:13:29 -06:00
reyesj2	c9b41e2eb1	formatting Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2025-02-20 10:11:34 -06:00
reyesj2	499d473b9d	set metrics indices to 0 replicas	2025-02-20 10:06:59 -06:00
Josh Brower	41147ae7f3	Merge pull request #14265 from Security-Onion-Solutions/2.4/elasticfix Update Elastic Defend JSON	2025-02-19 16:22:28 -05:00
Josh Brower	c6d72d31cb	Update Elastic Defend JSON	2025-02-19 16:16:38 -05:00
reyesj2	64f6a2d81e	re-enable security (siem) in default kibana space	2025-02-19 10:38:37 -06:00
reyesj2	45c66b93d7	make sure only a non-empty file is loaded Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2025-02-19 09:23:48 -06:00
Jorge Reyes	a3dba9b566	Merge pull request #14255 from Security-Onion-Solutions/foxtrot ES 8.17.1	2025-02-18 14:58:46 -06:00
Jason Ertel	23ab8983f7	Revert "Support CLI changing of a user's password without disabling existing auth settings for that user" This reverts commit `b25b6f7bf2`.	2025-02-18 12:41:41 -05:00
Jason Ertel	b25b6f7bf2	Support CLI changing of a user's password without disabling existing auth settings for that user	2025-02-18 12:37:25 -05:00
Jason Ertel	19593cd771	use consistent ciphers across listeners	2025-02-18 12:17:50 -05:00
reyesj2	1be8de7acb	must use null check	2025-02-18 11:16:57 -06:00
Jason Ertel	7dd64380cc	Enable TLSv1.3 and use consistent ciphers across listeners	2025-02-18 11:48:00 -05:00
reyesj2	21ed1439e2	update udp integration policy	2025-02-18 10:40:18 -06:00
reyesj2	c1c72ddd9b	update global@custom pipeline ignore null/empty string values	2025-02-18 10:39:54 -06:00
reyesj2	235a8e3934	update index templates for endpoint integration	2025-02-17 18:30:51 -06:00
reyesj2	3530bff320	always update package components state file to ensure index templates are created with any available integration components	2025-02-17 12:29:27 -06:00
reyesj2	12f0195f29	pfsense integration - keep suricata events	2025-02-17 12:28:23 -06:00
reyesj2	85dcfbf368	update kibana default space	2025-02-17 12:27:36 -06:00
reyesj2	8568c372f6	disable fleet apm	2025-02-17 12:21:31 -06:00
reyesj2	03b76cbcf5	remove state files	2025-02-13 08:51:50 -06:00
reyesj2	c711ffe6c5	keep pipeline "managed" metadata	2025-02-13 08:44:56 -06:00
reyesj2	09c7b31918	update pfsense pipeline version. Remove unused component templates	2025-02-12 16:33:56 -06:00
reyesj2	40cb3a53ae	Revert ES 8.17.2 upgrade -> 8.17.1 Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2025-02-12 13:18:08 -06:00
reyesj2	fb0cd436d3	ES 8.17.2 TODO: Check import-evtx-logs.json for updated pipeline versions Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2025-02-11 11:23:04 -06:00
reyesj2	33f145a40b	ensure network packet capture integration data has event.module:network_traffic	2025-02-10 13:16:39 -06:00
reyesj2	3b69ff9fc9	integration policy update	2025-02-10 13:16:25 -06:00
reyesj2	9bde70a8e2	zeek.software typo Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2025-02-07 15:19:40 -06:00
reyesj2	dd17ee7665	fix defining custom logstash pipelines when kafka is enabled	2025-02-06 22:19:24 -06:00
Jason Ertel	4b51066327	Merge pull request #14191 from Security-Onion-Solutions/jertel/wip ca download; ignore shard errors on startup; clarify oidc id	2025-02-05 15:09:57 -05:00
Jason Ertel	bf19c6e730	ca download; ignore shard errors on startup; clarify oidc id	2025-02-05 15:04:04 -05:00
Joshua Brower	4636a8d9b1	Refresh Agent installers	2025-02-05 09:38:33 -05:00
Joshua Brower	95fe212202	Rework for MSI	2025-02-05 09:29:45 -05:00
Corey Ogburn	23ebe966e0	Added Large Values Warning maxBulkEscalateEvents now has a warning that large values may run into other limits.	2025-02-04 10:33:04 -07:00
Corey Ogburn	d0fa6eaf83	New Limit on Bulk Creating Related Events Used by the UI and API to hint at a user that not every event will be attached to a case. Supports values up to 10,000 (the default limit on the number of documents returned by a single ES search).	2025-02-03 14:20:33 -07:00
Joshua Brower	b874619f0d	Fix ip-mappings ILM	2025-02-03 09:31:08 -05:00
Josh Patterson	fe4129c8e0	env discovery.type single-node change only managers and heavynodes are eligible for discovery.type=single-node	2025-01-29 09:11:52 -05:00
Jorge Reyes	8828a3049d	Merge pull request #14155 from Security-Onion-Solutions/reyesj2/es-integ-tmp add additional weird_integration	2025-01-27 16:36:17 -06:00
reyesj2	d74b69d84d	add additional weird_integration	2025-01-27 16:34:33 -06:00
Jorge Reyes	abcfe638c9	Merge pull request #14153 from Security-Onion-Solutions/reyesj2/es-integ-tmp Reyesj2/es integ tmp	2025-01-27 14:07:32 -06:00
Joshua Brower	49ab0751c0	Remove uneeded import	2025-01-27 15:01:21 -05:00

1 2 3 4 5 ...

10227 Commits